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AGENDA FOR INTERVIEW 

The Agenda is: 

(1) Explain the problem solved 

(2) Analyze the claimed solution 

(3) Analyze all cited art 

(4) Explain why all claims are allowable in view of the cited prior art 

Present Status of Case 

This Agenda for a telephonic interview with Examiner Colan is sent in response 
to the Office Action mailed by USPTO on July 8, 2009. 



• This Agenda for a telephonic interview with Examiner Colan is sent via facsimile: 

o Facsimile # (571)-273-2752 
o Telephone* (571)-272-2752 

• Attorney Michael T. Abramson (Reg. No. 60,320) will call Examiner Colan for the 
scheduled interview on August 27, 2009 at 11:00 AM (EST). 



Examiner: Colan, Giovanna B 
Art Unit: 2162 
Confirmation No.: 8050 
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PROPOSED CLAIMS : 

1. (Proposed Amendment) A method for establishing identity in a file system, 
comprising: 

receiving, from a client a first Network File System (NFS) operatio n filo roquoat 
concerning an indicated fil e from a client , the first NFS oneration^e^egt received by a 
proxy; 

forwarding the first NFS operatiom eqBest from the proxy to be received by a file 

server; 

returning a NFS file handler epiv associated with the first NFS operation^ 
Fewest from the file server to the prox y in response to the file server receiving the first 
NFS operation from the proxy ; 



inserting, by the proxy, metadata into a- the NFS file handle in response to 
receiving the NFS file handle from the file server, wherein the metadata is an encryption 



key ; fiftd 

sending, by the proxy in response to receiving the NFS file handle from the file 
server, the NFS file handle with the metadata inserted in the NFS file handle to the client 
as a reply to the first NFS operation; and 

using, by the client ., the metadata and the NFS file handle in a second NFS 
operation t e-be- uscd in further requ este-to identify the client and the indicated file. 

2. (Previously Presented) The method of Claim 1, farther comprising: 

using the metadata in the file handles for any of eliminating a need for the proxy 
to generate additional requests to the server to establish file identity, and for completing 
client requests. 

3. (Previously Presented) The method of Claim 1, further comprising: 

encoding metadata in a form of a session key into the file handle, the session key 
expiring after a predetermined amount of time. 

4. (Previously Presented) The method of Claim 1, further comprising: 
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2 using an NFS file system as the file system. 

1 5. (Previously Presented) The method of Claim 1, further comprising: 

2 using a stateless protocol by the file system. 

i 6-29. (Cancelled). 

1 30. (Previously Presented) The method of claim 1, further comprising: 

2 receiving, from the client, a second file request by the proxy, the second file 

3 request including the metadata in a further file handle sent with the second request; 

4 identifying, in response to the metadata, the client as having a permission to 

5 submit the second file request; 

6 sending the second file request to the file server and not sending the metadata 

7 with the second file handle to the file server; and 

s receiving by the proxy the further reply from the file server, and sending by the 

9 proxy the further reply to the client. 

1 31. (Previously Presented) A method for establishing identity in a file system, 

2 comprising: 

3 receiving a first file request concerning an indicated file from a client, the first file 

4 request received by a proxy; 

s forwarding the first file request from the proxy to a file server; 

6 returning a reply associated with the first file request from the file server to the 

7 proxy, wherein the reply includes a file handle associated with the indicated file; 
s inserting, by the proxy, metadata into the file handle; 

9 sending, by the proxy, the file handle with the metadata inserted in the file handle 

10 to the client, the metadata to be used in further requests to identify the client as having a 
n permission to access the indicated file; 

12 receiving, from the client, a second file request by the proxy, the second file 

13 request including the metadata in a second file handle sent with the second file request; 

3 
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u identifying, in response to the metadata, that the client has the permission to 

15 submit the second file request; 

16 sending the second file request to the file server and not sending the metadata 

17 with the second file handle to the file server; and 

1 8 receiving by the proxy a second reply from the file server, and sending by the 

19 proxy the second reply to the client 

1 32. (Previously Presented) An apparatus to establish identity in a file system, 

2 comprising: 

3 a proxy to receive a file request sent by a client to the file system, the proxy to 

4 forward the request to a file server; 

5 the file server to return a reply associated with the file request to the proxy, 

6 wherein the reply includes a file handle; 

7 the proxy to insert metadata into the file handle; and 

s the proxy to send the file handle with the metadata inserted in the file handle to 

9 the client, the metadata to be used in further requests to identify the client and the 

10 indicated file. 1 - 

1 33. (Previously Presented) The apparatus as in claim 32, further comprising: 

2 the proxy to receive, by the client, a second file request, the second file request to 

3 include the metadata in the second file handle sent with the second request; 

4 the proxy to identify, in response to the metadata, the client as having a 

5 permission to submit the second file request; 

6 the proxy to send the second file request to the file server and not to send the 

7 metadata with the second file handle to the file server; and 

s the proxy to receive a second reply from the file server, and the proxy to send the 

9 second reply to the client. 

l 34. (Previously Presented) The apparatus of Claim 32, further comprising: 
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2 the proxy to use the metadata in the file handle received from the client to 

3 eliminate a need for additional communication with the file server to establish file 

4 identity. 

1 35, (Previously Presented) The apparatus of Claim 32, further comprising: 

2 the proxy to encode the metadata in a form of a session key into the file handle, 

3 the session key expiring after a predetermined amount of time. 

1 36. (Previously Presented) The apparatus of Claim 32, further comprising: 

2 an NFS file system used as the file system. 

1 37. (Previously Presented) The apparatus of Claim 32, further comprising: 

2 a stateless protocol used by the file system. 

1 38. (Previously Presented) A non-volatile memory executed on a computer, comprising: 

2 said non-volatile memory containing procedures for execution on the computer 

3 for a method of establishing identity in a file system, the method having the steps of,' ■ 

4 receiving a file request concerning an indicated file from a client, the request 

5 received by a proxy; 

e forwarding the request from the proxy to a file server; 

7 returning a reply associated with the file request from the file server to the proxy, 

s wherein the reply includes a file handle associated with the indicated file; 
9 inserting, by the proxy, metadata into the file handle; and 

io sending, by the proxy, the file handle with the metadata inserted in the file handle 

n to the client, the metadata to be used in further requests to identify the client and the 

12 indicated file. 

1 39. (Previously Presented) A method for establishing identity in a file system, 

2 comprising: 
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3 receiving a first file request concerning an indicated file from a client, the first file 

4 request received by a proxy; 

s forwarding the first fil e request from the proxy to a fi] e server; 

6 granting a permission for the request to be acted upon by the file system in 

7 response to a predetermined protocol; 

3 returning a reply associated with the first file request from the file server to the 

9 proxy, wherein the reply includes a file handle associated with the indicated file; 

10 inserting, by the proxy, a session key into the file handle; and 

i t sending, by the proxy, the file handle with the session key inserted in the file 

i 2 handle to the client, the session key to be used in further requests to identify the client 
1 3 and the indicated file. 

1 40. (Previously Presented) The method according to claim 39, further comprising: 

2 receiving, from the client, a second file request by the proxy, the second file 

3 request including the session key in a second file handle sent with the second file request; 

4 identifying, in response to the session key, that the client has the permission to 

5 !' submit the second file request; \ ■ 

6 sending the second file request to the file server and not sending the session key 

7 with the second file handle to the file server; and 

a receiving by the proxy a second reply from the file server, and sending by the 

3 proxy the second reply to the client. 

1 41 . (Previously Presented) The method according to claim 39, further comprising: 

2 causing the session key to expire after a selected amount of time, 

1 42. (Previously Presented) The method according to claim 39, further comprising: 

2 causing the session key to expire after a selected amount of usage. 

1 43. (Previously Presented) The method according to claim 39, further comprising: 

2 using a NTS protocol as the predetermined protocol. 

6 
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, 44. (Previously Presented) The method according to claim 43, further comprising: 

2 using as the predetermined protocol a two way communication exchange between 

3 the proxy and the file server. 

1 45. (Previously Presented) An apparatus to establish identity in a file system, 

2 comprising: 

3 a proxy to receive a file request sent by a client to the file system, the proxy to 

4 forward the request to a file server; 

5 the file server to return a reply associated with the file request to the proxy, 

6 wherein the reply includes a file handle; 

7 the proxy to insert a session key into the file handle; and 

s the proxy to send the file handle with the session key inserted in the file handle to 

9 the client, the session key to be used in further requests to identify the client and the 

10 indicated file. 

1 46. (Previously Presented) The apparatus as in claim 45, further comprising: 

2 >■ the proxy to receive, by the client, a second file request, the second file request to 

3 include the session key in a further file handle sent with the second request; 

4 the proxy to identify, in response to the session key, the client as having a 

5 permission to submit the another file request; 

e the proxy to send the second request to the file server and not to send the session 

7 key with the second file handle to the file server, and 

s the proxy to receive a further reply from the file server, and the proxy to send the 

9 further reply to the client. 

1 47. (Previously Presented) The apparatus of Claim 45, further comprising: 

2 the proxy to use the metadata in the file handle received from the client to 

3 eliminate a need for additional communication with the file server to establish file 

4 identity. 
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1 48. (Previously Presented) The apparatus of Claim 45, further comprising: 

2 the proxy to encode the metadata in a form of a session key into the file handle, 

3 the session key expiring after a predetermined amount of time. 

1 49. (Previously Presented) The apparatus of Claim 45, further comprising: 

2 an NFS file system used as the file system. 

1 50. (Previously Presented) The apparatus of Claim 45, further comprising: 

2 a stateless protocol used by the file system. 

1 5 1 . (Previously Presented) An apparatus to establish identity in a file system, 

2 comprising: 

3 a proxy configured to receive a first file request sent by a client to the file system, 

4 the proxy further configUTed to forward the first file request to a file server; 

s the file server configured to return a reply associated with the first file request to 

e the proxy; 

7i- 1 .. the proxy further configured to insert a session keyinto a file handle; 

s the proxy further configured to send the file handle with the session key inserted 

9 in the file handle to the client, the session key configured to be used in a second file 

10 request to identify the client and the indicated file; 

1 1 the proxy further configured to receive, by the client, a second file request, the 

12 second file request configured to include the session key in a second file handle sent with 
n the second file request; 

14 the proxy further configured to identify, in response to the session key, the client 

15 as having a permission to submit the second file request; 

16 the proxy further configured to send the second file request to tire file server and 

17 not to send the session key with the second file handle to the file server; and 

is the proxy further configured to receive a second reply from the file server, and the 

19 proxy further configured to send the second reply to the client. 
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1 52. (Previously Presented) A method for establishing identity in a file system, 

2 comprising: 

3 receiving a first file request concerning an indicated file from a client, the first file 

4 request received by a proxy; 

5 forwarding the first file request from the proxy to a file server; 

6 determining that the client has a permission to have the request acted upon by the 

7 file system in response to a predetermined protocol; 

s returning a reply associated with die first file request from the file server to the 

9 proxy, wherein the reply includes a file handle associated with the indicated file; 



10 inserting, by the proxy, a cryptographic information into the file handle; 

1 1 sending, by the proxy, the file handle with the cryptographic information inserted 

12 in the file handle to the client, the cryptographic information to be used in one or more 

13 requests to identify the client and the indicated file, 

1 53. (Previously Presented) The method according to claim 52, further comprising: 

2 receiving, by the client, a second file request by the proxy, the second file request 
•£<!■■ '..■■■;i3v.- .including the crypto graphic: information in a second fileJiandle sent with the second file: ,.•> 

4 request; 

s identifying, in response to the cryptographic information, that the client has the 

6 permission to submit the second file request; 

7 sending the second file request to the file server and not sending the cryptographic 
s information with the second file handle to the file server; and 

9 receiving by the proxy a second reply from the file server, and sending by the 

10 proxy the second reply to the client. 

1 54. (Previously Presented) The method according to claim 52, further comprising: 

2 causing the cryptographic information to expire after a selected amount of time. 

1 55. (Previously Presented) The method according to claim 52, further comprising: 

2 causing the cryptographic information to expire after a selected amount of usage. 
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56. (Previously Presented) The method according to claim 52, further comprising: 

using a NFS protocol as the predetermined protocol. 

57. (Previously Presented) The method according to claim 52, further comprising: 

using as the predetermined protocol a two way communication exchange between 
the proxy and the file server, 

58. (Previously Presented) An apparatus to establish identity in a file system, 
comprising: 

a proxy configured to receive a file request for an indicated file sent by a client to 
the file system, the proxy further configured to forward the request to a file server; 

the file server configured to return a reply associated with the file request to the 
proxy, wherein the reply is configured to include a file handle; 

the proxy further configured to insert a cryptographic information into the file 
handle; and 

the proxy further configured to send the file handle with the cryptographic 
' . information inserted in the file handle to the: client, the cryptographic information ■ ! <:». v .,: 
configured to be used in further requests to identify the client and the indicated file. 

59. (Previously Presented) The apparatus as in claim 58, further comprising: 

the proxy further configured to receive, by the client, a second request, the second 
file request to include the cryptographic information in a second file handle sent with the 
second request; 

the proxy further configured to identify, in response to the cryptographic 
information, the client as having a permission to submit the second file request; 

the proxy further configured to send the second request to the file server and not 
to send the cryptographic information with the second file handle to the file server; and 

the proxy further configured to receive a further reply from the file server, and the 
proxy to send the further reply to the client. 
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60. (Previously Presented) The apparatus of claim 5S } further comprising: 

the proxy further configured to use the metadata in the file handle received from 
the client to diminate a need for additional communication with the file server to 
establish file identity. 

61. (Previously Presented) The apparatus of claim 58, further comprising: 

the proxy further configured to encode the metadata in a form of a cryptographic 
information into the file handle, the cryptographic information configured to expire after 
a predetermined amount of time. 

62. (Previously Presented) The apparatus of claim 58, further comprising: 

an NFS file system used as the file system. 

63. (Previously Presented) The apparatus of claim 58, further comprising: 

a stateless protocol used by the file system. 

64; ; :(Previously Presented) An' apparatus to :establish' identity in a file system, "■■ i 
comprising: 

a proxy configured to receive a first file request sent by a client to the file 
system, the proxy to forward the first file request to a file server; 

the file server configured to return a reply associated with the first file request 
to the proxy; 

the proxy further configured to insert a cryptographic information into a file 

handle; 

the proxy further configured to send the file handle with the cryptographic 
information inserted in the file handle to the client, the cryptographic information 
configured to be used in a second file request to identify the client and the indicated 
file; 
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13 the proxy further configured to receive, by the client, a second file request, the 

14 second file request configured to include the cryptographic information in a second 

15 file handle sent with the second file request; 

16 the proxy further configured to identify, in response to the cryptographic 
n information, the client as having a permission to submit the second file request; 

1B the proxy further configured to send the second file request to the file server 

19 and not to send the cryptographic information with the second file handle to the file 

20 server; and 

2 1 the proxy further configured to receive a second reply from the file server, and 

22 the proxy to send the second reply to the client. 

1 65. (Previously Presented) A method for establishing identity in a file system, 

2 comprising: 

3 receiving a file request concerning an indicated file from a client, the request 

4 received by a proxy; 

5 forwarding the request from the proxy to a file server; 

e ' returning a reply associated with the file request from the file server to the ■ - r 

7 proxy, wherein the reply includes a file handle associated with the indicated file; 

s inserting, by the proxy, metadata into the file handle; and 

9 sending, by the proxy, the file handle with the metadata inserted in the file 

10 handle to the client, a size of the file handle set to a sum of a length of the server file 
u handle and a length of the proxy metadata, the metadata to be used in further requests 
12 to identify the client and the indicated file. 

1 66. (Previously Presented) A method, comprising: 

2 receiving, by a proxy, a file request for a file sent from a client; 

3 forwarding the file request from the proxy to a file server; 

4 returning a reply associated with the file request from the file server to the 

5 proxy, wherein the reply includes a file handle; 

6 inserting, by the proxy, metadata into the file handle; 
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7 sending, by the proxy, the file handle with the metadata inserted in the file 

g handle to the client; and 

9 using, by the client, the metadata inserted into the file handle in a subsequent 

10 file request to identify the client and the file. 

1 67. (Previously Presented) A computer apparatus, comprising: 

2 a proxy configured to receive a client file request for a file and forward the 

3 File request from the proxy to a file server; 

* the server configured to return a reply associated with the file request, wherein 

5 the reply includes a file handle; 

g the proxy further configured to intercept the file handle sent from the server 

7 and insert metadata into the file handle to create a modified file handle; 

8 the proxy further configured to send the modified file handle with the 
<> metadata inserted in the file handle to the client; and 

io the proxy further configured to receive the modified file handle from the client 

n for a second file request for the file, wherein the proxy is further configured to use the 

12 ' - modified file handleto ehminate a need for the proxy to generate one or more . r 

13 additional requests to the server that would be required to access the file if the 

u modified file handle did not include the inserted metadata. 



13 

PAGE 14122 * RCVD AT 8/17/2009 10:42:38 AM [Eastern Daylight Time] * SVR:USPTO-EFXRF-6/9 * DNIS:2732752 * CSID: * DURATION (mm-ss):06-24 



08/17/2009 10:46 FAS 



0015 



PATENTS 
112056-0474 
P01-2475.01 

REMARKS 

Claims 1-5 and 30-67 are in the case. 
No new claims have been added. 

A proposed amendment, in particular to claim 1, is included for discussion. 

PROBLEM SOLVED 

Network File System (NFS) supports a lookup procedure, which converts a 
Filename into a File handle. This file handle is a unique, immutable identifier, usually an 
inode number, or disk block address. NFS does have a read procedure, but the client must 
specify a file handle and starting offset for every call to read. A software program or 
appliance that is a proxy for the NFS protocol, or any other protocol that uses server- 
generated file handles, usually requires additional file metadata information to be stored 
either on the server or locally on the proxy. This metadata can be used, for example, to 
apply different encryption keys, or to enforce access restrictions to files that are located 
in different logical units that are defined on the proxy, but possibly invisible to the file 
server. 

■ ; . . Such an appliance forwards file handles 'generated by * the file server to -clients, and S. ;■ 
subsequently acts as a proxy for client requests for access to the file system on the server. 
Given a file handle from a client, the appliance needs to establish to what area (a.k.a. 
storage vault) the file belongs, and use the appropriate keys to encrypt or decrypt data. If 
the metadata used to establish this are not available on the proxy, as is typically the case 
with large file sets accessed by many client machines, the proxy must send additional 
requests to the file server to determine how to handle the client request correctly. 

It would be advantageous to provide a mechanism that distributes information, 
effectively caches information, and provides a mechanism that improves performance by 
eliminating the need for the proxy to generate additional requests to the server to 
establish file identity. 
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Rejections Under 35 U.S.C. 5 103 

At Paragraph 6 of the Office Action, claims 1-5 and 30-67 were rejected under 35 
U.S.C § 103(a) as being anticipated by Chandrashekhar et al., U. S. Patent Publication 
2005/0033988 published on February 10, 2005 (hereinafter "Chandrashekhar"), and in 
view of Ryuutou et al., U.S. Patent Application Publication No. 2002/0083191 published 
on June 27, 2002 (hereinafter "Ryuutou"). 



Applicant's claimed novel invention, as set out in representative claim 1, 
comprises in part: 

1 . A method for establishing identity in a file system, comprising: 

receiving, from a client, a first Network File System (NFS) 
operation concerning an indicated file, the first NFS operation received by 
a proxy; 

forwarding the first NFS operation from the proxy to be received 
by a file server; 

returning a NFS file handle associated with the first NFS 
operation from the file server to the proxy in response to the file server 
receiving the first NFS operation from the proxy; 

inserting, by the proxy, metadata into the NFS file handle in 
n * ! " response to receiving the NFS 'file handle ftom the file server; wherein the 
metadata is an encryption key ; 

sending, by the proxy in response to receiving the NFS file handle 
from the file server, the NFS file handle with the metadata inserted in 
the NFS file handle to the client as a reply to the first NFS operation; 
and 

using, by the client, the metadata and the NFS file handle in a 
second NFS operation to identify the client and the indicated file. 



Chandrashekhar discusses processing file requests sent by a client and received by 
a proxy using security applications to encrypt, decompress, verify, and decrypt network 
data by a server receiving the files from the proxy [0058; 0071]. Header policy 
information is determined, generated, and then stored on the filer server [0055; Fig. 4-5], 
Chandrashekhar states that the metadata relates to key management, length of the 
original file/daiaset, whether the file was compressed prior to encryption or not, and 
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integrity checks for file data [0038], However, any metadata added to a file is stripped 
off before the file data/file attributes are returned to the client [0038]. 

Ryuutou discloses, in relevant part as cited by Examiner, a client establishing an 
HTTP connection between the client and a proxy server by initiating a communication 
connection request [0072-0073] . A session TP is added to header information of an 
HTTP request to determine whether or not a connection corresponding to a particular 
series of communications have been established [Abstract; 0017; see also Fig. 10 below 
for an example of an HTTP header information format]. This information about the 
client is stored in a memory table on the proxy server [0057]. 

| http//A/B/C/-" 



FIG. 10 

Applicant respectfully urges that Chandrashekhar, taken singly or in any 
combination with Ryuutou, does not disclose Applicant's claimed novel use of 

returning a NFS file handle associated with the first NFS operation from the 
file server to the proxy; 

inserting, by the proxy, metadata into the NFS file handle, wherein the 
metadata is an encryption key; and 

sending the NFS file handle with the metadata inserted in the NFS file handle 
to the client as a reply to the first NFS operation. 

Applicant claims, in part, a proxy receiving from a client a first Network File 
System (NFS) operation concerning an indicated file and forwarding the first NFS 
operation from the proxy to be received by a file server. Applicant further claims 
returning a NFS file handle associated with the first NFS operation from the file 
server to the proxy in response to the file server receiving the first NFS operation from 
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the proxy. Applicant further claims inserting, by the proxy, metadata into the NFS file 
handle, wherein the metadata is an encryption key. With that being said, after inserting 
(the encryption key) metadata into the NFS file handle, Applicant further claims sending 
the NFS file handle with the metadata inserted in the NFS file handle to the client as 
a reply to the first NFS operation. 

Applicant respectfully argues that Chandrashekhar does not teach or suggest 
Applicant's claimed novel returning a NFS file handle associated with the first NFS 
operation from the file server to the proxy. It should first be noted that while 
Chandrashekhar does disclose adding header information on a file by file basis, there is 
no indication that Chandrashekhar shows or suggests adding header information to a file 
handle. More to the point, Chandrashekhar does not teach or suggest the concept of a file 
handle. However, even if it is assumed arguendo that Chandrashekhar does disclose a 
file handle, Chandrashekhar is still silent to a Network File System (NFS) file handle. In 
contrast, Applicant claims returning a NFS file handle associated with a first NFS 
operation from the file server to the proxy. As such, even if it is assumed arguendo that 
s v . Chandrashekhar does disclose a file handle, because Chandrashekhar is silent to the' ,:r,-> 

concept of a NFS file handle, Chandrashekhar must still be silent to Applicant's claimed 
novel returning a NFS file handle associated with the first NFS operation from the 
file server to the proxy. 

Additionally, even if it is assumed arguendo that Chadrashekhar shows an NFS 
file handle, and the fact that Chadrashekhar strips off any metadata added to a file before 
the file data/file attributes are returned to the client, Chadrashekhar explicitly states that 
the metadata added on a file by file basis is "key management, length of the original 
file/dataset, whether ihe file was compressed prior to encryption or not, and integrity 
checks for file data. 77 In contrast, Applicant claims inserting metadata into the NFS file 
handle, wherein the metadata is an encryption key. As such, because "key management, 
length of the original file/dataset, whether the file was compressed prior to encryption or 
not, and integrity checks for file data" are not encryption keys, even if it is assumed 
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arguendo that Chadrashekhar shows an NFS file handle, Chadrashekhar must still be 
silent to Applicant's claimed novel inserting, by the proxy, metadata into the NFS file 
handle, wherein the metadata is an encryption key. 

Applicant respectfully argues that Ryuutou does not teach or suggest Applicant's 
claimed novel sending a NFS file handle with the metadata inserted in the NFS file 
handle to the client as a reply to the first NFS operation. It should first be noted that 
while Ryuutou shows adding a session ID to header information which is sent back to the 
client, similarly to Chadrashekhar, Ryuutou is silent to adding the session ID to a file 
handle or an NFS file handle. However, even if it is assumed arguendo that Ryuutou 
shows adding a session ID to a file handle or NFS file handle, Ryuutou must still be silent 
to Applicant's claimed sending a NFS file handle with the metadata inserted in the NFS 
file handle to the client as a reply to the first NFS operation. 

More particularly, while Ryuutou shows a client establishing an HTTP protocol 
communication connection request with a proxy server, Ryuutou shows adding a session 
ID to header information in response to the HTTP protocol communication connection 
i request which is not an NFS operation. In contrast, Applicant claims sending ar-NFS file 
handle with the metadata inserted in the NFS file handle to the client as a reply to the 
first NFS operation. As such, because Ryuutou is silent to the concept of NFS or an 
NFS operation (since Ryuutou is discussed in terms of responding to an HTTP protocol 
communication connection request which is not an NFS operation), even if it is assumed 
arguendo that Ryuutou shows adding a session ID to a file handle, Ryuutou must still be 
silent to Applicant's claimed NFS file handle or sending a NFS file handle with the 
metadata inserted in the NFS file handle to the client as a reply to the first NFS 
operation. 

Furthermore, Ryuutou does not teach or suggest Applicant's claimed inserting, 
by the proxy, metadata into the NFS file handle, wherein the metadata is an 

encryption key. Specifically, Ryuutou shows adding a session ID as header information 
which is sent back to the client- In contrast, Applicant claims inserting metadata into the 
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NFS file handle, wherein the metadata is an encryption key. As such, because a session 
ID is not the same as an encryption key, Ryuutou is also silent to Applicant's claimed 
novel inserting, by the proxy, metadata into the NFS file handle, wherein the 
metadata is an encryption key. 

Accordingly, Applicant respectfully urges that Chandrashekhar, taken singly or in 
any combination with Ryuutou, is legally insufficient to render the presently claimed 
invention obvious under 35 U.S.C. § 103. Chandrashekhar and Ryuutou, taken singly or 
in any combination, does not disclose Applicant's claimed 

returning a NFS file handle associated with the first NFS operation from the 
file server to the proxy; 

inserting, by the proxy, metadata into the NFS file handle, wherein the 
metadata is an encryption key; and 

sending the NFS file handle with the metadata inserted in the NFS file handle 
to the client as a reply to the first NFS operation. 

.;. i - v .^ Applicant's Interpretation of the Prior Art r : f. 

Applicant's interpretation of the prior art references was derived, in part, from the 
following excerpts: 

Chandrashekhar 

[003S] . . .The meta-data relates to key management, length of the original 
file/dataset, whether the file was compressed prior to encryption or not, 
integrity checks for file data. The meta-data is stripped off before the file 
data/file attributes are returned to the client . . . (emphasis added) 

Ryuutou 

[0017] A communication distribution controlling method according to a 
first preferred embodiment of the present invention is a communication 
distribution controlling method distributing one communication to any of 
a plurality of relay devices, which can relay the one communication, in 
correspondence with a connection request of the one communication 
within a series of communications from a client. With this method, a 
communi cation connection request is received from a client , whether or 
not a communication connection corresponding to a series of 
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communications is established is determined according to an identifier 
written in the communication connection request, and the requested 
communication is connected to a particular relay device as a relay 
destination of an established communication connection, if the 
communication connection is established, (emphasis added) 

[0057] FIG. 6 is a flowchart showing the process of a communication 
connection management method in this preferred embodiment. In FIG. 5, 
when a new communication connection to a gateway is established in 
correspondence with the initial communication connection request within 
one session, and a session ID is set, its contents are stored in a memory 
(table) not shown. At the same time, a timer not shown is started, and its 
elapsed time is monitored, (emphasis added) 

[0072] As explained with reference to FIG. 9, the session number S4, and 
the session ID ZZZ are set by the proxy in correspondence with tins 
communication connection request . The newly set session ID is added to 
the header information, for example, within the reply (1) to the PC- A 31a 
in FIG. 4, and returned from the proxy 32a to the client side, (emphasis 
added) 

[0073] At this time, ZZZ as the session ID is added between B and C in 

the header information shown in FIG- 1 0 . As a method adding a session 

ID, a method such as Netscape Cookie, with which a browser side can 

recognize and store, for example, datarthat is additionallyi described in an ; f ■;?"■> 

HTTP header, is used, (emphasis added) 



[http//A/B/C/- ■ 



FIG. 10 



[0074] A reply including header information to which a session ID is 
added is returned from a proxy side to a PC side as described above, so 
that header information including the session ED can be used as the header 
information in the second and subsequent communication connection 
requests , (emphasis added) 

Conclusion 

All newly proposed claims and proposed claim amendments are believed to be 
fully supported by Applicant's specification. 
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All proposed independent claims are believed to be in condition for allowance. 
All proposed dependent claims are believed to be dependent from allowable 
proposed independent claims, and therefore in condition for allowance. 
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